From 2a27e3ceda9c553df525f3562221381bdb0de997 Mon Sep 17 00:00:00 2001 From: Weston Steimel Date: Fri, 24 May 2024 10:51:39 +0100 Subject: [PATCH] convert CVE-2024-2002 Signed-off-by: Weston Steimel --- data/anchore/2024/CVE-2024-2002.json | 45 ++++++++++++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 data/anchore/2024/CVE-2024-2002.json diff --git a/data/anchore/2024/CVE-2024-2002.json b/data/anchore/2024/CVE-2024-2002.json new file mode 100644 index 00000000..7403e0c0 --- /dev/null +++ b/data/anchore/2024/CVE-2024-2002.json @@ -0,0 +1,45 @@ +{ + "additionalMetadata": { + "cna": "redhat", + "cveId": "CVE-2024-2002", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://bugzilla.redhat.com/show_bug.cgi?id=2267700", + "https://github.com/davea42/libdwarf-code/blob/main/bugxml/data.txt", + "https://access.redhat.com/security/cve/CVE-2024-2002", + "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZGPVLSPIXR32J6FOAFTTIMYTUUXJICGW/" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:libdwarf_project:libdwarf:*:*:*:*:*:*:*:*" + ], + "repo": "https://github.com/davea42/libdwarf-code", + "product": "libdwarf", + "vendor": "davea42", + "versions": [ + { + "lessThan": "0.9.2", + "status": "affected", + "version": "0.1.0", + "versionType": "semver" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + }, + "references": [ + { + "url": "https://github.com/davea42/libdwarf-code/blob/a54dbb55b436978efc87f854560d2d2253d79e42/bugxml/data.txt#L46C1-L69C21" + }, + { + "url": "https://github.com/davea42/libdwarf-code/commit/404e6b1b14f60c81388d50b4239f81d461b3c3ad" + } + ] + } +} \ No newline at end of file